$module = "members";
$sagmenu = "1";
$title = "Treading Area - Member Area";
include "../header.php";
$ssltarih = date("Y-m-d");
$arasure = 120;
$ZAMAN = @time();
$ZAMAN2= $ZAMAN+120;
$sslip = $_SERVER["REMOTE_ADDR"];
if ($_SESSION['UserId'] != "") {
$csql = mysql_query("select id, email, username, password from members where username = '".$_SESSION['UserName']."' and password = '".$_SESSION['Password']."' limit 1");
if (mysql_num_rows($csql) != 1) { Header("Location:". $myurl . "members/logout.php"); } else { Header("Location:". $myurl . "members/my.php"); }
}
/*echo "
";
print_r($_REQUEST);
echo "
";*/
if ($_REQUEST['Login'] == "yes") {
$encopass = md5($_REQUEST['password']);
$LoginSql = "SELECT id, email, username, password, status, buysellcheck, name, company from members where username = '".$_REQUEST['username']."' AND password = '".$encopass."' LIMIT 1";
$LoginQuery = mysql_query($LoginSql);
$LoginNum = mysql_num_rows($LoginQuery);
if ($LoginNum == "1") {
$LoginData = mysql_fetch_array($LoginQuery);
$UserId = $LoginData['id'];
$UserName = $LoginData['username'];
$Password = $LoginData['password'];
$UserMail = $LoginData['email'];
$Name = $LoginData['name'];
$Company = $LoginData['company'];
$sslsil = mysql_query("Delete From ssl_tp where mid = '".$UserId."' and ip = '".$sslip."' limit 1");
if ($LoginData['status'] == "0") { Header("Location: ". $myurl . "members/confirmation.php?email=" . $UserMail); }
elseif ($LoginData['buysellcheck'] != "1") { session_register("UserId"); Header("Location: ". $myurl . "members/buysell.php?member=" . $UserId); } else {
session_register("UserId");
session_register("UserName");
session_register("Password");
session_register("UserMail");
session_register("Name");
session_register("Company");
$TP_SID = session_id();
$osql=mysql_query("select * from ssl_tp where ip = '".$sslip."' limit 1");
if (mysql_num_rows($osql)>0) {
$zamani_guncelle = mysql_query("update ssl_tp set mid ='".$_SESSION['UserId']."', zaman = '".$ZAMAN2."' where ip = '".$sslip."' and mid ='".$_SESSION['UserId']."' limit 1");
} else {
$yoksa_ekle=mysql_query("insert into ssl_tp(id, mid, tp_sid, tarih, ip, zaman) values('', '".$_SESSION['UserId']."', '".$TP_SID."', '".$ssltarih."', '".$sslip."', '".$ZAMAN2."')");
}
$dusur=mysql_query("delete from ssl_tp where zaman < '".$ZAMAN."'");
Header("Location: ". $myurl . "members/my.php");
} // status control if end
} else {
$error_color = " bgcolor=FFDDDD";
$error_text = "Login is incorrect";
$login_value = " value=\"".$_REQUEST['username']."\"";
}
}
?>
include "../footer.php";
?>